{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,21]],"date-time":"2026-02-21T18:11:20Z","timestamp":1771697480056,"version":"3.50.1"},"reference-count":30,"publisher":"Springer Science and Business Media LLC","issue":"3","license":[{"start":{"date-parts":[[2017,8,30]],"date-time":"2017-08-30T00:00:00Z","timestamp":1504051200000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["Sci. China Inf. Sci."],"published-print":{"date-parts":[[2018,3]]},"DOI":"10.1007\/s11432-016-9030-0","type":"journal-article","created":{"date-parts":[[2017,9,1]],"date-time":"2017-09-01T23:45:48Z","timestamp":1504309548000},"update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":11,"title":["Attacking OpenSSL ECDSA with a small amount of side-channel information"],"prefix":"10.1007","volume":"61","author":[{"given":"Wenbo","family":"Wang","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Shuqin","family":"Fan","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2017,8,30]]},"reference":[{"key":"9030_CR1","first-page":"419","volume-title":"A modular approach to the design and analysis of authentication and key exchange protocols (extended abstract)","author":"M Bellare","year":"1998","unstructured":"Bellare M, Canetti R, Krawczyk H. A modular approach to the design and analysis of authentication and key exchange protocols (extended abstract). In: Proceedings of the 30th Annual ACM Symposium on Theory of Computing, Dallas, 1998. 419\u2013428"},{"key":"9030_CR2","first-page":"137","volume-title":"Entity authentication and authenticated key transport protocols employing asymmetric techniques","author":"S Blake-Wilson","year":"1998","unstructured":"Blake-Wilson S, Menezes A. Entity authentication and authenticated key transport protocols employing asymmetric techniques. In: Proceedings of the 5th International Workshop on Security Protocols, Paris, 1998. 137\u2013158"},{"key":"9030_CR3","doi-asserted-by":"crossref","first-page":"107","DOI":"10.1007\/BF00124891","volume":"2","author":"W Diffie","year":"1992","unstructured":"Diffie W, van Oorschot P C, Wiener M J. Authentication and authenticated key exchanges. Design Code Cryptoger, 1992, 2: 107\u2013125","journal-title":"Design Code Cryptoger"},{"key":"9030_CR4","unstructured":"National Institute of Standards and Technology. Digital signature standard (DSS). FIPS PUB 186. http:\/\/csrc.nist. gov\/publications\/PubsFIPS.html"},{"key":"9030_CR5","unstructured":"National Institute of Standards and Technology. Digital signature standard (DSS). FIPS PUB 186-4. http:\/\/csrc.nist.gov\/publications\/fips\/fips186-3"},{"key":"9030_CR6","doi-asserted-by":"crossref","first-page":"36","DOI":"10.1007\/s102070100002","volume":"1","author":"D Johnson","year":"2001","unstructured":"Johnson D, Menezes A, Vanstone S A. The elliptic curve digital signature algorithm (ECDSA). Int J Inf Secur, 2001, 1: 36\u201363","journal-title":"Int J Inf Secur"},{"key":"9030_CR7","doi-asserted-by":"crossref","first-page":"50","DOI":"10.1145\/138859.138865","volume":"35","author":"S Vanstone","year":"1992","unstructured":"Vanstone S. Responses to NIST\u2019s proposal. Commun ACM, 1992, 35: 50\u201352","journal-title":"Commun ACM"},{"key":"9030_CR8","volume-title":"Bitcoin: a peer-to-peer electronic cash system","author":"S Nakamoto","year":"2008","unstructured":"Nakamoto S. Bitcoin: a peer-to-peer electronic cash system. 2008. http:\/\/www.cryptovest.co.uk\/resources\/Bitcoin %20paper%20Original.pdf"},{"key":"9030_CR9","volume-title":"OpenSSL \u2014 cryptography and SSL\/TLS toolkit","author":"The openssl project.","year":"2016","unstructured":"The openssl project. OpenSSL \u2014 cryptography and SSL\/TLS toolkit. Version 1.0.2h. 2016"},{"key":"9030_CR10","first-page":"140","volume-title":"IACR Cryptology ePrint Archive","author":"Y Yarom","year":"2014","unstructured":"Yarom Y, Benger N. Recovering OpenSSL ECDSA nonces using the Flush+Reload cache side-channel attack. IACR Cryptology ePrint Archive, 2014, 140. http:\/\/eprint.iacr.org\/"},{"key":"9030_CR11","first-page":"388","volume-title":"Differential power analysis","author":"P C Kocher","year":"1999","unstructured":"Kocher P C, Jaff J, Jun B. Differential power analysis. In: Proceedings of the 19th Annual International Cryptology Conference, Santa Barbara, 1999. 388\u2013397"},{"key":"9030_CR12","first-page":"169","volume-title":"IACR Cryptology ePrint Archive 2002","author":"D Page","year":"2002","unstructured":"Page D. Theoretical use of cache memory as a cryptanalytic side-channel. IACR Cryptology ePrint Archive 2002, 2002: 169. http:\/\/eprint.iacr.org\/"},{"key":"9030_CR13","first-page":"312","volume-title":"On the power of simple branch prediction analysis","author":"O Ac\u0131i\u00e7mez","year":"2007","unstructured":"Ac\u0131i\u00e7mez O, Ko\u00e7 \u00c7 K, Seifert J P. On the power of simple branch prediction analysis. In: Proceedings of the 2nd ACM Symposium on Information, Computer and Communications Security, Singapore, 2007. 312\u2013320"},{"key":"9030_CR14","first-page":"667","volume-title":"Cache-timing template attacks","author":"B B Brumley","year":"2009","unstructured":"Brumley B B, Hakala R M. Cache-timing template attacks. In: Proceedings of the 15th International Conference on the Theory and Application of Cryptology and Information Security, Tokyo, 2009. 667\u2013684"},{"key":"9030_CR15","doi-asserted-by":"crossref","first-page":"37","DOI":"10.1007\/s00145-009-9049-y","volume":"23","author":"E Tromer","year":"2010","unstructured":"Tromer E, Osvik D A, Shamir A. Efficient cache attacks on AES, and countermeasures. J Cryptol, 2010, 23: 37\u201371","journal-title":"J Cryptol"},{"key":"9030_CR16","first-page":"355","volume-title":"Remote timing attacks are still practical","author":"B B Brumley","year":"2011","unstructured":"Brumley B B, Tuveri N. Remote timing attacks are still practical. In: Proceedings of the 16th European Symposium on Research in Computer Security, Leuven, 2011. 355\u2013371"},{"key":"9030_CR17","first-page":"305","volume-title":"Cross-VM side channels and their use to extract private keys","author":"Y Zhang","year":"2012","unstructured":"Zhang Y, Juels A, Reiter M K, et al. Cross-VM side channels and their use to extract private keys. In: Proceedings of the ACM Conference on Computer and Communications Security, Raleigh, 2012. 305\u2013316"},{"key":"9030_CR18","first-page":"85","volume-title":"Lucky 13 strikes back","author":"G Irazoqui","year":"2015","unstructured":"Irazoqui G, Inci M S, Eisenbarth T, et al. Lucky 13 strikes back. In: Proceedings of the 10th ACM Symposium on Information, Computer and Communications Security, Singapore, 2015. 85\u201396"},{"key":"9030_CR19","first-page":"719","volume-title":"Flush+Reload: a high resolution, low noise, L3 cache side-channel attack","author":"Y Yarom","year":"2014","unstructured":"Yarom Y, Falkner K. Flush+Reload: a high resolution, low noise, L3 cache side-channel attack. In: Proceedings of the 23rd USENIX Security Symposium (USENIX Security 2014), San Diego, 2014. 719\u2013732"},{"key":"9030_CR20","first-page":"422","volume-title":"Amplifying side channels through performance degradation","author":"T Allan","year":"2016","unstructured":"Allan T, Brumley B B, Falkner K, et al. Amplifying side channels through performance degradation. In: Proceedings of the 32nd Annual Conference on Computer Security Applications, Los Angeles, 2016. 422\u2013435"},{"key":"9030_CR21","first-page":"114","volume-title":"Extended hidden number problem and its cryptanalytic applications","author":"M Hlav\u00e1\u010d","year":"2006","unstructured":"Hlav\u00e1\u010d M, Rosa T. Extended hidden number problem and its cryptanalytic applications. In: Proceedings of the 13th International Conference on Selected Areas in Cryptography, Montreal, 2006. 114\u2013133"},{"key":"9030_CR22","first-page":"75","volume-title":"\u201cOoh aah... just a little bit\u201d: a small amount of side channel can go a long way","author":"N Benger","year":"2014","unstructured":"Benger N, van de Pol J, Smart N P, et al. \u201cOoh aah... just a little bit\u201d: a small amount of side channel can go a long way. In: Proceedings of the 16th International Workshop on Cryptographic Hardware and Embedded System, Busan, 2014. 75\u201392"},{"key":"9030_CR23","doi-asserted-by":"crossref","first-page":"283","DOI":"10.1023\/A:1011214926272","volume":"23","author":"N Howgrave-Graham","year":"2001","unstructured":"Howgrave-Graham N, Smart N P. Lattice attacks on digital signature schemes. Design Code Cryptoger, 2001, 23: 283\u2013290","journal-title":"Design Code Cryptoger"},{"key":"9030_CR24","doi-asserted-by":"crossref","first-page":"151","DOI":"10.1007\/s00145-002-0021-3","volume":"15","author":"P Q Nguyen","year":"2002","unstructured":"Nguyen P Q, Shparlinski I. The insecurity of the digital signature algorithm with partially known nonces. J Cryptol, 2002, 15: 151\u2013176","journal-title":"J Cryptol"},{"key":"9030_CR25","doi-asserted-by":"crossref","first-page":"201","DOI":"10.1023\/A:1025436905711","volume":"30","author":"P Q Nguyen","year":"2003","unstructured":"Nguyen P Q, Shparlinski I. The insecurity of the elliptic curve digital signature algorithm with partially known nonces. Design Code Cryptoger, 2003, 30: 201\u2013217","journal-title":"Design Code Cryptoger"},{"key":"9030_CR26","first-page":"293","volume-title":"Solving BDD by enumeration: an update","author":"M Liu","year":"2013","unstructured":"Liu M, Nguyen P Q. Solving BDD by enumeration: an update. In: Proceedings of Cryptographers\u2019 Track at the RSA Conference, San Francisco, 2013. 293\u2013309"},{"key":"9030_CR27","first-page":"1","volume-title":"BKZ2.0: better lattice security estimates","author":"Y Chen","year":"2011","unstructured":"Chen Y, Nguyen P. BKZ2.0: better lattice security estimates. In: Proceedings of the 17th International Conference on the Theory and Application of Cryptology and Information Security, Seoul, 2011. 1\u201320"},{"key":"9030_CR28","first-page":"3","volume-title":"Just a little bit more","author":"J Pol van de","year":"2015","unstructured":"van de Pol J, Smart N P, Yarom Y. Just a little bit more. In: Proceedings of Cryptographer\u2019s Track at the RSA Conference, San Francisco, 2015. 3\u201321"},{"key":"9030_CR29","first-page":"1505","volume-title":"Attacking OpenSSL implementation of ECDSA with a few signatures","author":"S Fan","year":"2016","unstructured":"Fan S, Wang W, Cheng Q. Attacking OpenSSL implementation of ECDSA with a few signatures. In: Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security, Vienna, 2016. 1505\u20131515"},{"key":"9030_CR30","first-page":"1626","volume-title":"ECDSA key extraction from mobile devices via nonintrusive physical side channels","author":"D Genkin","year":"2016","unstructured":"Genkin D, Pachmanov L, Pipman I, et al. ECDSA key extraction from mobile devices via nonintrusive physical side channels. In: Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security, Vienna, 2016. 1626\u20131638"}],"container-title":["Science China Information Sciences"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s11432-016-9030-0.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/article\/10.1007\/s11432-016-9030-0\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s11432-016-9030-0.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2017,9,1]],"date-time":"2017-09-01T23:46:00Z","timestamp":1504309560000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/s11432-016-9030-0"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2017,8,30]]},"references-count":30,"journal-issue":{"issue":"3","published-print":{"date-parts":[[2018,3]]}},"alternative-id":["9030"],"URL":"https:\/\/doi.org\/10.1007\/s11432-016-9030-0","relation":{},"ISSN":["1674-733X","1869-1919"],"issn-type":[{"value":"1674-733X","type":"print"},{"value":"1869-1919","type":"electronic"}],"subject":[],"published":{"date-parts":[[2017,8,30]]},"article-number":"032105"}}